Skip to content

Industries
Products
- SOLUTIONS
- PRODUCTS
Company
Perspectives
Contact Us

Industries
Products
- SOLUTIONS
- PRODUCTS
Company
Perspectives
Contact Us

How a Single Compromise Threatened 34% of npm

On September 8, 2025, the npm account of a Qix maintainer of widely used JavaScript libraries was compromised. Malicious versions of chalk, debug, and other packages were briefly published before removal. Because Qix’s libraries are foundational to the JavaScript ecosystem, the compromise demonstrated a potential blast radius of more than 20 million packages — about 34% of the entire NPM ecosystem.

Read More

NPM Client Alert - Perspectives

Trending: Critical Minerals, Tariffs

All Topics

All Types

Types

[Perspective] Categories

Article

Award

Case Study

Client Alert

Event

Podcast

Webinar

White Paper

Topics

[Perspective] Topics

AI technology

All Topic

Compliance

Contested Logistics

Critical Infrastructure

Critical Minerals

Cybersecurity

Defense

ESG

Forced Labor

Sanctions

Supply Chain Management

Supply Chain Risk Management

Tariffs and Trade Friction

Third Party Risk Management

Delayed software maintenance in healthcare

Let’s Worry About That Later: The Failed Economics of Software Maintenance in Healthcare

Stacked shipping containers with one highlighted in red, symbolizing transshipment risks and global supply chain vulnerabilities.

Transshipment Intelligence

Nx Software Supply Chain Attack on popular open-source software tools

Nx Software Supply Chain Compromise

Title slide for Exiger’s white paper ‘Lessons in Logistics from America’s Gray Zones, Part 01: Pre-position, Evacuate, Rebuild, and Sustain,’ set against an image of destroyed buildings and a digital container backdrop symbolizing contested logistics and supply chain risk.

Pre-position, Evacuate, Rebuild, and Sustain: Lessons In Logistics from America’s Gray Zones (Part 1)

DPW Amsterdam

Meet Exiger at DPW Amsterdam 2025

Open-pit mining site representing UFLPA high-priority sectors such as steel, copper, and lithium supply chains under DHS and CBP enforcement.

DHS & CBP Expand Focus of UFLPA: New High-Priority Sectors

Defense Technology

Exiger Executive Forum | War Time Economics

Omdia Report (1)

Exiger Recognized as a Leader in the Omdia Market Radar: Firmware and Software Supply Chain Security, 2025

lance-asper-0gMx6663tE8-unsplash

The Exiger Enhanced UFLPA Solution

Tarrif-Intelligence-Solution-Assessment-Dash

Tour the Exiger Tariff Intelligence Solution

Global Network

BIS Weighs the 50% Rule: Implications for Supply Chains and Third-Party Risk

Axios Events Host and Moderator Hope King interviewed Amazon Web Services Director of Global Defense Partners Shannon Judd and Exiger SVP of Supply Chain Transformation Derek Lemke as part of the Axios Live Future of Defense: AI, Secure Supply Chains & Military Power event at the 2025 Paris Air Show.

A View from the Top - Future of Defense: AI, Secure Supply Chains & Military Power

Load More

Industries

Automotive
Corporations
Critical Infrastructure
Defense
Defense Industrial Base
Energy
Financial Institutions
FinTechs
Healthcare
Investment and Fundraising Teams
Investment Migration Programs
Public Sector
Telecommunications

Solutions

Third Party Risk Management
Supply Chain Management
Supply Chain Risk Management
Due Diligence

Products

The 1Exiger Platform
Supply Chain Explorer
DDIQ
SDX Supply Chain Visibility
DDIQ Analytics
Insight 3PM
Part Attribute Characterization
ExploreRx
Screen IQ
Ion Channel

Company

Our Story
Media Mentions
Join the Team
Our People
Press Releases
Trust Center
Upcoming Events
Management Team

©

2025

Privacy and Legal Center

Demo The
Exiger Platform